Improper access control and intent redirection in Samsung Email prior to 6.1.70.20 allows attacker to access specific formatted file and execute privileged behavior.
oryginał ENCVSS Vector
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:NSamsung Email
APPSamsung< 6.1.70.20
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
Powiązane podatności
CVE-2018-10497HIGH7.8ten sam produkt
This vulnerability allows local attackers to escalate privileges on vulnerable installations of Samsung Email ...
CVE-2022-36837MEDIUM6.2ten sam produkt
Intent redirection vulnerability using implicit intent in Samsung email prior to version 6.1.70.20 allows atta...
CVE-2018-10498MEDIUM5.5ten sam produkt
This vulnerability allows local attackers to disclose sensitive information on vulnerable installations of Sam...
CVE-2022-22287LOW3.9ten sam produkt
Abitrary file access vulnerability in Samsung Email prior to 6.1.60.16 allows attacker to read isolated data i...
CVE-2025-4632CRITICAL9.8⚠ KEVPL ✓ten sam vendor
Path Traversal w Samsung MagicINFO 9 Server — zapis plików jako SYSTEM